You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@inlong.apache.org by "CVEDetect (via GitHub)" <gi...@apache.org> on 2023/03/02 07:31:31 UTC

[GitHub] [inlong] CVEDetect commented on pull request #7481: [INLONG-7480][CVE] Add a specified tomcat-embed-core dependency for fixing the CVE problem

CVEDetect commented on PR #7481:
URL: https://github.com/apache/inlong/pull/7481#issuecomment-1451414995

   > @CVEDetect thanks for your contribution, please update by referring to the comment.
   
   
   
   > @CVEDetect thanks for your contribution, please update by referring to the comment.
   
   The first commit is not suitable, because there are two tomcat versions 8.5.46 and 9.0.60 in root pom.xml, and the vulnerability exists in inlong-dataproxy, so choose the tomcat version in inlong-dataproxy/pom.xml modified


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: commits-unsubscribe@inlong.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org